privacyguides
/
privacytools.io
Archived
1
0
Fork 0
Code Issues 304 Pull Requests 47 Activity

operating-systems.html: add a warning for Linux/CPU vulns #1231

Merged
Mikaela merged 14 commits from cpu-vulns into master 2019-08-31 17:05:37 +00:00
Conversation 1 Commits 14 Files Changed 1 +1 -2
1 changed files with 1 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 95ea0c871a - Show all commits

3
_includes/sections/operating-systems.html
View File

@ -39,10 +39,9 @@ tor="http://sejnfjrq6szgca7v.onion"
<ul>
Mikaela commented 2019-08-30 10:35:05 +00:00 (Migrated from github.com)
Review
Copy Link
<p>When running a enough recent kernel, you can check the CPU vulnerabilities it detects by <code>tail -n +1 /sys/devices/system/cpu/vulnerabilities/*</code>. By using <code>tail -n +1</code> instead of <code>cat</code>, the file names are also visible.</p>

Should there be a comma here?

```suggestion <p>When running a enough recent kernel, you can check the CPU vulnerabilities it detects by <code>tail -n +1 /sys/devices/system/cpu/vulnerabilities/*</code>. By using <code>tail -n +1</code> instead of <code>cat</code>, the file names are also visible.</p> ``` Should there be a comma here?
Mikaela commented 2019-08-30 10:36:37 +00:00 (Migrated from github.com)
Review
Copy Link

I wonder what is the official spelling of UEFI/BIOS?

I think UEFI has deprecated/replaced BIOS entirely, but everyone calls it as BIOS due to legacy reasons and I think my grub says "Enter setup" and the thing calls itself as UEFI BIOS on my laptop.

I wonder what is the official spelling of UEFI/BIOS? I think UEFI has deprecated/replaced BIOS entirely, but everyone calls it as BIOS due to legacy reasons and I think my grub says "Enter setup" and the thing calls itself as UEFI BIOS on my laptop.
Mikaela commented 2019-08-30 10:37:30 +00:00 (Migrated from github.com)
Review
Copy Link
  <li><code>sudo grub-mkconfig -o /boot/grub/grub.cfg</code> to generate a new grub config file including this new kernel boot flag</li>

or kernel/boot or is it fine?

```suggestion <li><code>sudo grub-mkconfig -o /boot/grub/grub.cfg</code> to generate a new grub config file including this new kernel boot flag</li> ``` or kernel/boot or is it fine?
Mikaela commented 2019-08-30 10:38:22 +00:00 (Migrated from github.com)
Review
Copy Link

this must be a typo or losing a train of thought and without noticing it continuing with another train of thought

this must be a typo or losing a train of thought and without noticing it continuing with another train of thought
Mikaela commented 2019-08-30 10:40:34 +00:00 (Migrated from github.com)
Review
Copy Link

I am not entirely sure if a comma belongs here

I am not entirely sure if a comma belongs here
nitrohorse commented 2019-08-31 01:28:20 +00:00 (Migrated from github.com)
Review
Copy Link

I think technically no, but reads more naturally 😄

I think technically no, but reads more naturally :smile:
nitrohorse commented 2019-08-31 01:29:13 +00:00 (Migrated from github.com)
Review
Copy Link

I've seen it with a forward slash but I don't think it's "official" spelling.

I've seen it with a forward slash but I don't think it's "official" spelling.
nitrohorse commented 2019-08-31 01:30:15 +00:00 (Migrated from github.com)
Review
Copy Link

kernel boot flag sounds fine to me 😄

kernel boot flag sounds fine to me :smile:
nitrohorse commented 2019-08-31 01:31:16 +00:00 (Migrated from github.com)
Review
Copy Link

How about adding quotes:

...now says "SMT disabled."

How about adding quotes: > ...now says "SMT disabled."
Mikaela commented 2019-08-31 08:11:18 +00:00 (Migrated from github.com)
Review
Copy Link

https://en.wikipedia.org/wiki/UEFI isn't too helpful

https://en.wikipedia.org/wiki/UEFI isn't too helpful
<li><a href="#win10"><i class="fas fa-link"></i> Don't use Windows 10 - It's a privacy nightmare</a></li>
<li>Disable hyperthreading to mitigate <a href="https://mdsattacks.com/">RIDL and Fallout: MDS attacks on mdsattacks.com</a>. See also the next topic</li>
</ul>
<h4 id=linuxcpuvulns>Remember to check CPU vulnerability mitigations on Linux</h4>
<h4 id="cpuvulns">Remember to check CPU vulnerability mitigations</h4>
<p><em>This also affects Windows 10, but it doesn't expose this information or mitigation instructions as easily.</em></p>